SubtleCrypto

[richarddavison]

https://w3c.github.io/webcrypto/#dfn-SubtleCrypto https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto?retiredLocale=sv-SE

### Related issues
- [ ] https://github.com/awslabs/llrt/issues/125
- [ ] https://github.com/awslabs/llrt/issues/208

[tmokmss]

Missing crypto.createVerify is also a blocker to use aws-jwt-verify.

edit) I found aws-jwt-verify has web browser support (doc), so we should be able to use the package after LLRT will implement SubtleCrypto.

[panva]

~Missing crypto.createVerify is also a blocker~ to use aws-jwt-verify.

edit) I found aws-jwt-verify has web browser support (doc), so we should be able to use the package after LLRT will implement SubtleCrypto.

https://www.npmjs.com/package/jose will be out of the box compatible as soon as SubtleCrypto is implemented as well.

[ShivamJoker]

Hi @richarddavison do we have any ETAs on the crypto implementation? I'm unable to migrate my codebase to LLRT because I'm blocked due to SubtleCrypto and RSA.

[richarddavison]

Hi @richarddavison do we have any ETAs on the crypto implementation? I'm unable to migrate my codebase to LLRT because I'm blocked due to SubtleCrypto and RSA.

Hi @ShivamJoker! Thanks for your patience. We are working on it so should be weeks rather than months. It's not a super complex API, but you'd have to hang on for a bit longer 🙂

[stephencroberts]

@richarddavison I was looking into this as well as we'd like to provide a Web Crypto API for our customers. If there's anything I can help with, let me know! I can allocate some time to contribute.

It may also be helpful to use the WebCryptoAPI web-platform-tests once we merge https://github.com/awslabs/llrt/pull/447 which adds the WPT test harness.

[richarddavison]

@stephencroberts that would be fantastic. We appreciate all the help we could get 👌 Here is a reference implementation (not using the same JS engine, but contains all the algorithms we need so we can take a lot a inspiration from there) https://github.com/lagonapp/lagon/blob/main/crates/runtime_crypto/src/lib.rs

[stephencroberts]

@richarddavison Is there a work-in-progress somewhere or would I start with what's in main?

[richarddavison]

@richarddavison Is there a work-in-progress somewhere or would I start with what's in main?

Please start of main and create a draft PR as soon as you have something even if it’s far from complete so we can “tag along” 🙂

[stephencroberts]

FYI @richarddavison, this is on the back burner for now for us, so someone else is free to pick this up. If/when it becomes a priority again for us, I can revisit it.

[dreamorosi]

Also looking to implement an auth use case - the methods that would help would be importKey, verify, sign, generateKey, and exportKey - all from SubtleCrypto.

I've looked at contributing but unfortunately I'm too out of my depth with Rust atm.

[perpil]

I'm attempting to use jose to mint/verify JWT tokens and I'm seeing this error: SyntaxError: Could not find export 'KeyObject' in module 'crypto' AFAICT I'm using the latest llrt 0.2.2-beta, is this expected?

[panva]

I'm attempting to use jose to mint/verify JWT tokens and I'm seeing this error: SyntaxError: Could not find export 'KeyObject' in module 'crypto' AFAICT I'm using the latest llrt 0.2.2-beta, is this expected?

Yeah, there's no crypto implementation in llrt, that's what this issue is about.

[richarddavison]

@panva @perpil @stephencroberts thanks for your patience, we understand this its frustrating to don't have a crypto API. Crypto support will be added. There are a few differences between Node.js crypto libraries and WinterCG subtle crypto. Ideally we would support both, but Subtile will have priority.